$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/_PdT00aqq5WrFMYmdRXN8T-A-7s.mft File: _PdT00aqq5WrFMYmdRXN8T-A-7s.mft (raw, json) Hash identifier: l9F9zs4TWxGIxIiS/gkVWYt8waasOybWfG8jN9R3FeQ= Subject key identifier: 8D:23:A5:25:87:E9:9D:4B:78:ED:87:F1:63:E4:7A:A2:B7:DF:EA:44 Authority key identifier: FC:F7:53:D3:46:AA:AB:95:AB:14:C6:26:75:15:CD:F1:3F:80:FB:BB Certificate issuer: /CN=A9179F22/serialNumber=FCF753D346AAAB95AB14C6267515CDF13F80FBBB Certificate serial: 011C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_PdT00aqq5WrFMYmdRXN8T-A-7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/_PdT00aqq5WrFMYmdRXN8T-A-7s.mft Manifest number: 0110 Signing time: Fri 25 Apr 2025 04:04:52 +0000 Manifest this update: Fri 25 Apr 2025 04:04:52 +0000 Manifest next update: Fri 02 May 2025 04:04:52 +0000 Files and hashes: 1: _PdT00aqq5WrFMYmdRXN8T-A-7s.crl (hash: 47EesnqA9IkPwvr7RzIEKfTuwt2wbqeQnOsmnFscR1Q=) 2: 4120F6A28F3011EEA61ACF62C4F9AE02.roa (hash: OCepXKtPM8Ugq1ZnTOeqLJrMwE6SWX8J/dtz+Y3O35w=) 3: 41969D1C8F3011EEA61ACF62C4F9AE02.roa (hash: mRLPSGz3fDg54l8MXzyosEq3sw4/imNOjGKPzEwZfwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/_PdT00aqq5WrFMYmdRXN8T-A-7s.crl rsync://rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/_PdT00aqq5WrFMYmdRXN8T-A-7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_PdT00aqq5WrFMYmdRXN8T-A-7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:04:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F22, serialNumber=FCF753D346AAAB95AB14C6267515CDF13F80FBBB Validity Not Before: Apr 25 04:04:52 2025 GMT Not After : May 2 04:04:52 2025 GMT Subject: CN=680b09e4-6f03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e6:e3:34:2e:d7:ef:9b:99:ad:18:fe:ea:e3: 97:b6:00:9f:e0:bf:4d:39:0e:ae:b2:87:dd:63:47: 73:fc:b3:ea:29:ea:bb:f8:52:0d:dd:1b:63:41:df: c3:ed:20:2d:8b:a4:f7:21:2b:33:4b:06:27:a3:66: f2:25:d6:41:34:55:9a:c1:cc:f5:7c:72:47:37:81: dc:d3:db:f7:57:16:c9:b0:e0:5e:26:9f:01:88:e1: 10:ed:e3:0c:c4:20:5a:b0:fc:83:42:64:57:4e:1a: 84:7a:66:6c:ea:3c:0b:e7:0c:88:54:ae:b5:ea:36: 86:85:f1:54:cc:d8:b8:a9:bc:e8:52:ba:63:7b:68: 56:b0:90:d3:1e:6b:23:2a:84:8a:d9:ee:34:1a:f5: af:a2:7e:0f:76:33:f8:6d:a8:18:9f:8b:36:fa:a3: 0c:04:2c:b7:fa:30:4e:11:b7:05:53:5e:e0:0a:52: fa:92:5d:8b:3d:cf:98:1c:f5:da:87:74:58:31:e6: ea:22:f8:13:8d:4f:97:53:cd:c6:cf:52:e5:df:7e: 8d:fb:e8:43:b5:3a:0a:a0:1d:58:0c:00:c5:77:92: f9:d8:7c:d0:04:11:35:4f:20:cf:b6:17:3a:87:74: 07:29:e3:7a:f5:a4:a4:18:95:6a:44:55:6b:07:33: c0:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:23:A5:25:87:E9:9D:4B:78:ED:87:F1:63:E4:7A:A2:B7:DF:EA:44 X509v3 Authority Key Identifier: keyid:FC:F7:53:D3:46:AA:AB:95:AB:14:C6:26:75:15:CD:F1:3F:80:FB:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/_PdT00aqq5WrFMYmdRXN8T-A-7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_PdT00aqq5WrFMYmdRXN8T-A-7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/_PdT00aqq5WrFMYmdRXN8T-A-7s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:34:90:38:e5:69:57:6a:4b:15:e6:21:7f:7c:de:81:b6:43: 56:63:19:e5:ee:73:a2:db:d9:6a:d6:ab:50:c4:ea:77:f7:0e: 3b:20:35:1b:f0:bc:e8:af:45:8e:25:9f:3e:8c:76:a6:dd:23: 73:77:36:47:48:c3:04:ee:4d:f9:9f:3c:7d:c9:72:77:a6:d4: ef:de:1f:15:a4:4d:6c:00:d1:b6:30:c7:7e:92:22:1f:ac:24: e2:5f:4c:8f:18:71:ad:cf:08:ea:8a:d8:88:f6:91:36:dd:f2: 35:65:0d:af:07:47:3b:cb:00:47:d0:e9:a0:84:51:b6:24:85: 27:3c:f2:a4:09:61:b3:ff:0f:52:72:e2:1c:39:3c:06:18:54: 93:00:3f:71:f9:5c:cd:f9:c7:8d:0a:ef:c6:42:69:fa:8d:1e: 9f:71:7d:e8:0c:32:39:fa:5e:d6:c6:90:1d:35:31:b0:ae:fe: 33:de:a7:ef:d4:ad:81:cf:dd:19:0b:d9:6a:0d:d4:f4:b0:b8: 16:2a:1b:ac:84:6d:23:34:8a:fc:b0:9d:1e:40:4e:b4:2b:48: 18:31:75:fa:9a:d6:07:65:87:0c:ac:f7:18:7f:bf:4e:4b:11: fa:5d:07:7b:d7:78:3c:ee:0c:c6:b9:cf:d9:68:b4:98:1e:49: 3d:3a:c7:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlGMjIxMTAvBgNVBAUTKEZDRjc1M0QzNDZBQUFCOTVBQjE0QzYyNjc1MTVDREYx M0Y4MEZCQkIwHhcNMjUwNDI1MDQwNDUyWhcNMjUwNTAyMDQwNDUyWjAYMRYwFAYD VQQDEw02ODBiMDllNC02ZjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ObjNC7X75uZrRj+6uOXtgCf4L9NOQ6usofdY0dz/LPqKeq7+FIN3RtjQd/D 7SAti6T3ISszSwYno2byJdZBNFWawcz1fHJHN4Hc09v3VxbJsOBeJp8BiOEQ7eMM xCBasPyDQmRXThqEemZs6jwL5wyIVK616jaGhfFUzNi4qbzoUrpje2hWsJDTHmsj KoSK2e40GvWvon4PdjP4bagYn4s2+qMMBCy3+jBOEbcFU17gClL6kl2LPc+YHPXa h3RYMebqIvgTjU+XU83Gz1Ll336N++hDtToKoB1YDADFd5L52HzQBBE1TyDPthc6 h3QHKeN69aSkGJVqRFVrBzPAnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0jpSWH 6Z1LeO2H8WPkeqK33+pEMB8GA1UdIwQYMBaAFPz3U9NGqquVqxTGJnUVzfE/gPu7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUYyMi9DRjlCRjVGRThG MkYxMUVFOUNCRkQ5NjFDNEY5QUUwMi9fUGRUMDBhcXE1V3JGTVltZFJYTjhULUEt N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19QZFQwMGFxcTVXckZNWW1kUlhOOFQtQS03cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUYyMi9DRjlCRjVGRThGMkYxMUVFOUNCRkQ5NjFDNEY5QUUwMi9fUGRUMDBhcXE1 V3JGTVltZFJYTjhULUEtN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9NJA45WlXaksV5iF/fN6BtkNWYxnl7nOi29lq1qtQxOp39w47IDUb 8Lzor0WOJZ8+jHam3SNzdzZHSMME7k35nzx9yXJ3ptTv3h8VpE1sANG2MMd+kiIf rCTiX0yPGHGtzwjqitiI9pE23fI1ZQ2vB0c7ywBH0OmghFG2JIUnPPKkCWGz/w9S cuIcOTwGGFSTAD9x+VzN+ceNCu/GQmn6jR6fcX3oDDI5+l7WxpAdNTGwrv4z3qfv 1K2Bz90ZC9lqDdT0sLgWKhushG0jNIr8sJ0eQE60K0gYMXX6mtYHZYcMrPcYf79O SxH6XQd713g87gzGuc/ZaLSYHkk9OseB -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:38 2025 by rpki-client